Site Reviews by Hammer Bro in the Norton Safe Web community Thu May 17 04:59:34 +0000 2012 http://safeweb.norton.com/profile/Hammer%20Bro Small rating:- 1/5 Review:- Thought I received an e-mail from one of my friends, however, upon opening the e-mail, it was clearly a scam directing people to: images.indianewsreel.com. That’s not the worst of it. As I was still signed into my e-mail, all of a sudden, IE 8 BLOCKED files supposedly being downloaded to my system. Good catch IE 8. Attention all Symantec Employees: you may want to be on the lookout for this type of behaviour as it relates to e-mails. Good thing I’m not your average Hammer Bro. Many have criticised my ardent policy of keeping my “pop-up blocker” set to maximum. However, I would venture to say, that if it was not set to the maximum - - the remote attack would not have been blocked. Although I have scheduled more research to be done on this, for now, I wanted to ALERT the community as quick as possible. Interesting to note- WOT has thrown this “images.indianewsreel.com” in the RED. Norton, please re-evaluate. H.B. Tue, 24 Apr 2012 08:26:09 +0000 http://safeweb.norton.com/report/show?url=indianewsreel.com Review:- Recently, I perused the “Services” tab under MSCONFIG of my laptop running Windows XP Professional. I found something interesting: ohkdfa. I thought to myself, well, never heard of that one. Subsequently, I sought out venerated process bureaus i.e. Neuber and Uniblue Process Library. They were NOT able to verify it. I even “googled” it, and that did not yield any authoritative hits. There were obscure references - - and some sites were not even in English. I might go further into those results at another time, but, for now, I want to provide you guys with the places (that I have been able to identify) where this item lodged itself in my registry because, at least in my opinion, anything you can’t baseline through respected outfits is just downright suspicious and SHOULD be REMOVED. First place:- HKEY_LOCAL_MACHINE, SOFTWARE, Microsoft, Shared Tools, MSConfig, services. Second place:- HKEY_LOCAL_MACHINE, SYSTEM, ControlSet001, Enum, Root, LEGACY_OHKDFA. Third place:- HKEY_LOCAL_MACHINE, SYSTEM, ControlSet001, Services, OHKDFA. Fourth place:- HKEY_LOCAL_MACHINE, SYSTEM, ControlSet003, Enum, Root. Fifth place:- HKEY_LOCAL_MACHINE, SYSTEM, ControlSet003, Services, OHKDFA. Bottom line, the full damage or lack thereof is hard to assess being that there is no precursor. Although speculative, at best I would say something that facilitates spamming activity; at worst, a remote file inclusion that has been monitoring my test computer up until the time I found it. It is my hope that this review can at least serve as a foundation for those struggling to find information on this. I encourage forum leaders on here as well as people like SendOfJive from community.norton.com to “weigh in” (so to speak). Mon, 19 Mar 2012 05:26:08 +0000 http://safeweb.norton.com/report/show?url=ohkdfa.exe Site:- freelancer.com Small Rating:- 3/5 Review:- They start going into how a user associated with this domain, “has just left a review about you….” Really? I’m that important, eh? They go on, “feedback is hidden to let you provide feedback on the other party.” Sounds suspicious to me. Let’s bring this back down to Earth. The only “feedback” I’m leaving is on Safe Web to warn our community. Some aggregate intelligence for freelancer.com. SiteAdvisor- Green. WOT- Green. WOT’s community- red reviews outnumber green, 15 to 7. Trend Micro- safe. Google Safe Browsing- nothing suspicious. However, they uncover that it is hosted on SoftLayer. In my experience, in the past, SoftLayer was problematic to the place where Malwarebytes’ blocked it. URLVoid- clean. hpHosts- not listed. However, the two [2] additional matches for freelancer.com were EMD classification. MalwareURL- not listed. Malware Domain List- cites getafreelancer which I already reported on, and, netafreelancer.com for RFI. DNS-BH- no matches. According to Wikipedia, freelancer.com was once getafreelancer.com. Interesting. Apparently people have flagged freelancer.com on Complaints Board. I will provide the citation below. Just “Googling” freelancer.com scam brings up a gamut of results from a person on Ripoff Report excoriating it to someone on Yahoo! Answers saying it’s legit. Bottom line, although the aggregate intelligence seems split and (at times) more surrounding, because this site was highlighted in a spam e-mail, I’m going to be leery. H.B. Citations:- http://www.mywot.com/en/scorecard/freelancer.com http://www.google.com/safebrowsing/diagnostic?site=freelancer.com http://hosts-file.net/?s=freelancer.com&view=matches http://www.malwaredomainlist.com/mdl.php?search=freelancer.com&colsearch=All&quantity=50&inactive=on http://en.wikipedia.org/wiki/Freelancer.com http://www.complaintsboard.com/?search=freelancer.com&everything=Everything Sun, 27 Nov 2011 07:02:13 +0000 http://safeweb.norton.com/report/show?url=freelancer.com Site- Pokémon.com Title- Money, here’s lookin’ at you kid. Small rating- 5/5 Review- Pokémon.com central “hub” for all things Pokémon. I know, I know, real deep insight there. However, I really appreciate the fact that in the site’s TOS (Terms of Service) they emphasize, “parents should supervise their children’s online activities as diligently as they do their ‘real world’ activities….” So true. I mean, how many times do we see parents throw their kids on a computer in the library then walk away? Picture this sounding like Vince from ShamWoW!, “That’s a recipe for disaster….” On a personal note, Children need Pokémon. You may think that that is crazy, but I will explain why. Pokémon gives the kids something to hope for and that’s what it’s all about. Giving people hope. Pokémon teaches children essential life skills that translate directly to the real world. Skills including, but not limited to: character building, hard work, teamwork, and, that if you persevere and persist for the sake of excellence, there is NO limit to what you can accomplish. The next generation has to stay inspired, for they are the future. The future doctors who will cure Diabetes Type I, the future scientists to eliminate dependence on foreign oil. Our place in the cosmos is staked on them - - but it won’t happen if they don’t have inspiration, a necessary component required for “outside the box” thinking that brings about the aforementioned goals. I hold Pokémon to be at least one [1] source for that inspiration. Bottom line, my level 100 kadabra will kick all you’re butts! {:-D Mon, 14 Nov 2011 04:25:05 +0000 http://safeweb.norton.com/report/show?url=pokemon.com Title:- www.w3.org Subtitle:- Yeah, I’ll stick to E3. Rating:- 3/5 Tags:- Spam, Potential Scam, Potentially Dangerous. Review:- This w3 was another Website highlighted in the first spam e-mail I reviewed since I’m back. S.A.- Green. One [1] e-mail per month and five [5] green downloads. S.A.’s Community- Good (11), Spam (1), Adware, Spyware, or Viruses (12), Phishing or other scams (5). WOT- Green, with exceptional marks. WOT’s Community- pretty positive outside of two [2] reviewers. illyax flags w3 for phishing or other scams. Seattle John explains, “McAfee reports finding 3 virus, 2 trojans on this site. As you should do everywhere, SCAN before installing!” Google Safe Browsing- “Of the 505 pages we tested on the site over the past 90 days, 1 page(s) resulted in malicious software being downloaded and installed without user consent. The last time Google visited this site was on 2011-06-13, and the last time suspicious content was found on this site was on 2011-06-11. Malicious software includes 5 worm(s), 2 virus. Successful infection resulted in an average of 1 new process(es) on the target machine.” My recommendation- Despite S.A. and WOT giving this domain a “pass”, the evidence from Google Safe Browsing is just damning. Maybe only certain sections of this domain have been abused - - that S.A. and WOT are not picking up on? All in all, because this domain came to me via spam, I’m going to be leery. Resources:- http://www.siteadvisor.com/sites/w3.org http://www.mywot.com/en/scorecard/w3.org http://www.google.com/safebrowsing/diagnostic?site=w3.org Sat, 30 Jul 2011 22:28:33 +0000 http://safeweb.norton.com/report/show?url=w3.org Subtitle:- I try not to freelance. Rating:- 3/5 Tags:- Spam, Potential Scam, Potentially Dangerous Review:- This domain was another highlighted by the spammer I just brought to the surface (FarahFawcett@designerslove.com). Community Intelligence for getafreelancer.com: S.A.- Green. S.A.’s community- spam (1), bad shopping experience (2). WOT- Green, with pretty high marks. WOT’s community- outside of jason_beiswanger, positive. Beiswanger stated, “This company steals money from people’s paypal accounts.” Malware Domain List- January 5, 2010, has getafreelancer.com listed; the problem was apparently a hidden Iframe. My recommendation- Although not seen as problematic by hpHosts, URLVoid, MalwareURL, Google Safe Browsing, and Malware Domain Blocklist, there were snags with SiteAdvisor’s community, a person from WOT’s community, and Malware Domain List. Maybe this domain has been abused, but being that I came across it from a spam e-mail, I would exercise caution. Also, just because a site is not listed in hpHosts does not necessarily make it safe - - that is clearly articulated on hpHost’s site. Resources:- http://www.siteadvisor.com/sites/getafreelancer.com http://www.mywot.com/en/scorecard/getafreelancer.com http://www.malwaredomainlist.com/mdl.php?search=getafreelancer.com&colsearch=All&quantity=All&inactive=on Thu, 09 Jun 2011 07:42:11 +0000 http://safeweb.norton.com/report/show?url=getafreelancer.com Subtitle:- Hammer Bro Resurrection! Rating:- 3/5 Tags:- Spam, Potential Scam Review:- Even though Ms. Fawcett is deceased, apparently some spammer thought it would be cute to use her name. The subject line was, “Over 70% of surveyed women admit that larger men are a bit more fun!” And, I say, how the hell do they empirically quantify that? There were other potentially malicious domains listed in this e-mail which, undoubtedly, I will have to review, but this designerslove.com is my focus for now. According to hpHosts, the domain has four [4] separate I.P. addresses. To me, that seems suspicious. Outside of the info from hpHosts, the intelligence community did not have too much on this domain, which is troubling to say the least. Resources:- http://hosts-file.net/default.asp?s=designerslove.com Wed, 08 Jun 2011 06:11:15 +0000 http://safeweb.norton.com/report/show?url=designerslove.com My Malwarebytes' program recently provided me a warning for the following I.P.: 91.205.96.8. Interestingly enough, it was a link provided by one of my professors for an assignment. Although I will eventually have to look into this further, because I'm tremendously busy currently, I at least wanted to give the community a "heads-up" in the meantime. H.B. 3/5 Sun, 27 Feb 2011 23:44:56 +0000 http://safeweb.norton.com/report/show?url=91.205.96.8 Review:- Personally, these sites where you can get a “one-night stand” don’t even merit a speck of my intelligence, however, the shills are at it once again. The following “reviewers” are representatives of A.F.F. and have issued positive reviews to over-inflate the community rating for the site. Those who can be disregarded include but are not necessarily limited to: Yogi100, boris5670, richpf, Pick-A-Card, zigpoet, Bill Hayes, Robin Johnstone, CLTHORPE, cancer6962, Garrick Douglas, Admin001, TBrazziel, muhamed altawaty, masterandslut647, Sharky1168, soton94, gee2000, Joseph J, andrema, William Blackwell, Doobie, HotRod56, avatarDriggs, and Maaddog. How could it be that all these people come out of the woodwork just about a day ago? Seems suspicious to me. Additionally, if you notice, not a gosh darn one of these shills has any other reviews to their name except for A.F.F. Coincidence? I would imagine, NOT. Be advised, the real reviews for this ignominious domain [outside of this review] begin on pp. 5. Then, some will be tempted to say, that the aforementioned people reviewed because Norton incorrectly categorized the site as malicious. Let me say this, 1.) I’m still skeptical. 2.) If Norton had this site in the “red”, it probably should have stayed as such. For those less educated, here is the aggregate intelligence for this A.F.F. SiteAdvisor = Green. However, cited for one [1] pop-up and the third-party cookie: hotbox.com. S.A.’s Community = Spam (42), Adware, spyware, or viruses (31), Browser Exploit (14), Excessive Popups (24), Bad Shopping Experience (5). WOT = Yellow. WOT’s Community = In the “yellow” for: Trustworthiness, Vendor Reliability, and Privacy. In the “red” for: Child Safety. Spam (18), Annoying ads or popups (17), Bad Customer Experience (9), Phishing or other scams (28), Malicious content, viruses (9), Browser Exploit (1), Spyware or Adware (5), Hateful, violent or illegal content (4), Ethical Issues (2), Useless (1). hpHosts = Engaged in Malware Distribution (EMD). URLVoid = “DANGEROUS”. Cited by Threat Log. Wikipedia has presented an interesting criticism of A.F.F. available at: http://en.wikipedia.org/wiki/Adult_FriendFinder. A.F.F. has also been cited for fraud and cheating by Complaints Board. Please see: http://www.complaintsboard.com/complaints/adult-friend-finder-c148231.html. Bottom line, I’m Team Rocket and I’m in your face! HA! HA! HA! Bet you didn’t expect that. Furthermore, if you post less than an intelligent comment on this review i.e., defending A.F.F., I will NOT respond back. H.B. 1/5 Resources:- 1.) http://www.siteadvisor.com/sites/adultfriendfinder.com 2.) http://www.mywot.com/en/scorecard/adultfriendfinder.com 3.) http://hosts-file.net/default.asp?s=adultfriendfinder.com 4.) http://www.urlvoid.com/ 5.) http://www.threatlog.com/search/adultfriendfinder.com 6.) http://en.wikipedia.org/wiki/Adult_FriendFinder 7.) http://www.complaintsboard.com/complaints/adult-friend-finder-c148231.html Mon, 10 Jan 2011 05:58:25 +0000 http://safeweb.norton.com/report/show?url=adultfriendfinder.com Review:- Malwarebytes.org, awesome site, home of the excellent spyware, adware (and even some viruses) ground scanner. Putting aside my experience with childfun.com, during this past baseball season, I wanted to see what place the Yanks’ were in. In my behest, I incorrectly typed in “yestnetwork.com”. Now, what program do you think blocked that malicious site? Was it Norton? NO!!! It was MBAM (at that point) 1.46!!! All that, and the Yanks’ didn’t even win. Anyhow, the point is, Norton was left in the dark and MBAM came through in the clutch. Please don’t mis-understand this. There are times when Norton will block an intrusion attempt that is unbeknownst to MBAM. Really, they work hand-in-hand. Some will argue that Superantispyware is even BETTER than MBAM. That may be true, but, for user-friendliness, I have heard, that MBAM far surpasses Superantispyware. Above all else, PLEASE get the paid version of MBAM. It will afford you tech support, real-time malicious I.P. blocking, and the “flash scan”. Improved scheduling, along with the “Heuristics Shuriken” engine, truly set this program apart. Now, some may be wondering, “H.B., if you are so impressed, why not five [5] out of five [5]?” I’m GETTING to that. The program is not without some quirks. It seems to find some f.p.s. The glaring example being System Restore. My system is configured in such a way, that System Restore is disabled, yet, MBAM flags it. Now, their representatives will say, “Well sir, if the change was made by malware, you would have been happy that MBAM caught that.” I say, potentially, however, I want the program to come to a place where it can decipher a user-generated change versus a disruptive malware change. Additionally, only up until recently, if you had Norton’s parental controls on (from the add-on pack) at the same time you tried to update MBAM, the program would fail with a horribly annoying “HTTP Query Headers” error. Bottom line, despite the aforementioned, MBAM provides excellent supplemental protection for Norton, and, like I have always said, an alliance of both companies would K.O. badware once and for all. Although MBAM does not employ phone or “go to assist” / “log me in rescue”, their dedicated support staff [for paid subscribers via the “ticket system”] of professionals who have been dealing with malware for years is superiorly responsive, further embossing the notion that I WILL keep MBAM on all my computers now and forevermore. H.B. 4.9 out of 5. Fri, 31 Dec 2010 08:49:19 +0000 http://safeweb.norton.com/report/show?url=malwarebytes.org Review:- Except, there is no fun here. If you “Google” this I.P. address, it belongs to a site known as, “childfun.com”. hpHosts also verifies that Childfun belongs to 67.215.241.99. Supposedly, this is a good site where people can access fingerplays and other things that (apparently) children are interested in. I don’t care if Norton says that this site is safe. Whilst perusing the MBAM protection logs, it recorded that 324 attacks were successfully blocked from infiltrating my system. Here is the aggregate intelligence. S.A. = Green. S.A.’s Community = Adware, spyware, or viruses (1). Beware, the third-party tracking cookie, doubleclick.net, WILL be left on your prospective system. WOT = Lighter green. If you enter Norton.com into WOT you will see the differences in the shades of green. WOT’s Community = Only 71 for trustworthiness and only 88 for Child Safety. MalwareURL = NOT currently listed. hpHosts = NOT listed. However, they have issued a warning that, “The IP PTR associated with this record, does not resolve back to it’s original IP address. This is very bad practice.” URLVoid = At first, it said that the domain did not exist or was inaccessible. After running it a second time, it came back “CLEAN”. Malware Domain List = Nothing. Malware Domain Blocklist = Nothing. When I “Googled” “childfun and spam”, I found an interesting discussion board from http://www.webservertalk.com/ wherein someone referenced as “Jenny Wanderscheid” (jenny@childfun.com) was being accused of sending out unsolicited bulk e-mail. In the address I have provided, under resources, for Webservertalk, if you go to that page and scroll down a little, please note the box where “Shmuel (Seymour J.) Metz” is first highlighted. There, you will find the exchange where this “jenny@childfun.com” is being cited for criminality i.e., spamming activities. And, as Elena Hughes once said, “If they spam they will scam.” Please be advised, that if you visit the address I have provided for Webservertalk, they too, unfortunately, deploy tracking cookies. Remember to block them or do a “quick sweep” with Norton after visiting. Normally, I hate to direct people to sites that use third-party trackers, however, I felt that this resource was necessary to buttress my arguments. Bottom line, (I don’t know how many times I have to say this) leave the “fun” for Chuck E. Cheese, and, if you are smart, AVOID this “childfun.com”. H.B. “came to town” and all he left in Childfun’s stocking was HAMMERS!!! H.B. 1/5 Resources:- 1.) http://www.siteadvisor.com/sites/childfun.com 2.) http://www.mywot.com/en/scorecard/childfun.com 3.) http://www.malwareurl.com/listing-urls.php 4.) http://hosts-file.net/default.asp?s=childfun.com 5.) http://vscan.urlvoid.com/analysis/4dc06a0c203e88d6c38d6ab9f68e887a/Y2hpbGRmdW4tY29t/ 6.) http://www.malwaredomainlist.com/mdl.php?search=childfun.com&colsearch=All&quantity=50 7.) http://www.malwaredomains.com/wordpress/ 8.) http://www.webservertalk.com/archive154-2004-2-109415.html Sat, 25 Dec 2010 06:59:37 +0000 http://safeweb.norton.com/report/show?url=67.215.241.99 Review:- Besides being a “phake pharm”, here are the results from Site Advisor. S.A. = Green. S.A.’s Community = Spam (1), Phishing or other scams (3). WOT = RED. WOT’s Community = Spam (1), Phishing or other scams (1). Spam Cop cited. hpHosts = NOT listed, however, a warning was issued that, “ZeusTracker has identified this hostname as a known Zeus hostname. URLVoid = cited by SURBL, TrendMicro, and URIBL. Interesting. According to URLVoid, lifemednow.com came back “CLEAN” with respect to Zeus Tracker. URLVoid indicates that the IP Country is BA (Bosnia and Herzegovina). I also “Googled” this lifemednow.com. Not too many results. One “hit” was the one wherein I say, “more analysis required”, one from S.A., and one from a site Norton did not verify, therefore, I wasn’t going there. The one from S.A. really intrigued me. Whilst discussing another criminal domain (clickrxonline), if you scroll down, “HansTheBlueFrog” not only cites lifemednow for criminality, but a host of others. Please see: http://www.siteadvisor.cn/sites/clickrxonline.com/msgpage. Bottom line, support your local pharmacy, and avoid these criminals. Norton, please get up to speed with this. H.B. 1/5 Resources:- 1.) http://www.siteadvisor.com/sites/lifemednow.com 2.) http://www.mywot.com/en/scorecard/lifemednow.com 3.) http://hosts-file.net/default.asp?s=lifemednow.com 4.) http://www.urlvoid.com/ 5.) http://www.siteadvisor.cn/sites/clickrxonline.com/msgpage Mon, 13 Dec 2010 08:29:57 +0000 http://safeweb.norton.com/report/show?url=lifemednow.com Review:- The full title of the spammer I’m going after here is: juarez_xo@mchr1.siemens.de. Another domain was also mentioned in this e-mail: lifemednow.com. Basically, this is an illegal pharmacy promising fast, discreet shipping. With respect to siemens.de, S.A. = Green. WOT = Green. hpHosts = NOT listed, however, watch out, there are multiple hostnames. Bottom line, please do NOT mis-understand this review. Although siemens.de may or may not be legitimate (I still find confliction in my soul regarding multiple hostnames) I am singling out juarez_xo (which Norton does not allow me to do -- it defaults to siemens.de) and I want people to be aware of that spammer. Lifemednow.com will require more in-depth analysis, but for now, this is my focus. H.B. 1/5 Resources:- http://hosts-file.net/default.asp?s=siemens.de Fri, 26 Nov 2010 02:39:46 +0000 http://safeweb.norton.com/report/show?url=siemens.de This is another (more recent) spammer of my MSN e-mail. Another domain that was also presented in this garbage e-mail was: crounpertypist.de, so, I would avoid that one as well. Getting back to freenet.de, apparently the e-mail came from a “MR.MOHAMMED SANUSI BARKINDO” with the subject-line being: “VERY URGENT”. S.A. = Green. S.A.’s Community = Spam (2), Adware, spyware, or viruses (5), Browser exploit (1), Excessive popups (3), Phishing or other scams (1), Bad shopping experience (2). WOT = Green. WOT’s Community = Spam (16), Annoying ads or popups (28), Bad customer experience (58), Phishing or other scams (4), Adult content (6), Ethical issues (4), Useless (5). hpHosts = NOT listed. URLVoid = Clean. Bottom line, the only thing “urgently required” is that you avoid these criminals. Resources:- http://www.siteadvisor.com/sites/freenet.de http://www.mywot.com/en/scorecard/freenet.de H.B. 1/5 Mon, 22 Nov 2010 02:50:33 +0000 http://safeweb.norton.com/report/show?url=freenet.de More recent spammers of my MSN account, their lure is that your, “e-mail has been selected for an award…” Other key words to watch for are “Liverwood Promo”. S.A. = Green. WOT = Green. WOT’s Community = Only 66 with respect to child safety. hpHosts = NOT listed, however, they reveal that there are three [3] hostnames for this site: mx02.wow.synacor.com, mx03.wow.synacor.com, and mx01.wow.synacor.com. I have noticed this “mx” is always connected with spam. I have said this before, and it is worth repeating. Why should this domain have three [3] separate hostnames? Some would argue that it is a big company, hence, in need of more hosts. However, Microsoft is HUGE and when you enter them into hpHosts, multiple hostnames do not return. I am leaning towards this, that wowway must possess multiple hostnames to further their spamming activities. In scope of this, I only have a theory. If you know why they should need more than one [1] hostname (that is not in connection with malicious activity) please feel free to enlighten me. I am not rigid like a stone, and am up for anyone who can shed more light on this. URLVoid = Clean. Bottom line, if it sounds too good to be true, oftentimes it is. The only “award” you’ll receive from these guys is spam. DO NOT misunderstand this review. Maybe wowway itself is legit maybe it is not. I am rating 1/5 “bsk82” because I SEE that that is PHONY. Norton does not allow users to specifically delineate, hence, everything goes to wowway.com on the whole. Resources:- http://hosts-file.net/default.asp?s=wowway.com http://www.mywot.com/en/scorecard/wowway.com http://www.dslreports.com/forum/r21787982-Spam-emailanyone-else-get-this- http://www.broadbandreports.com/forum/r23324712-Hotmail-and-wowway.com http://answers.yahoo.com/question/index?qid=20080809232623AAcDPJj Please pay particular attention to the last three resources; it seems as though I am not the only one having spam problems in connection with this wowway. H.B. Mon, 08 Nov 2010 04:51:22 +0000 http://safeweb.norton.com/report/show?url=wowway.com Tgcginc.com is a more recent spammer of my MSN e-mail. These guys claim that there is a “class action suit” against another bunch of under-handed people, classmates.com. However, in an examination of the fraudulent e-mail, they reveal themselves with the following inconsistency, they say, “….this Supplemental Notice is to inform you about the reduction in the attorney’s fee award sought by Class Counsel from $1.3 million to $1.05 million…” Yeah, I’m no math genius, but last I checked, 1.3 to 1.5 was an INCREASE NOT A REDUCTION!!! Furthermore, the following are the reports from the usual bureaus. S.A. = Green. WOT = Oblivious. hpHosts = NOT listed. URLVoid = Not flagged. Bottom line, trust me, NOBODY (except for maybe Elena Hughes) wants to see classmates.com taken down more than I do, but it is not going to occur from more fraudsters. If you have received this e-mail talking about a suit against Classmates - - disregard it. H.B. 1/5 Thu, 04 Nov 2010 05:34:42 +0000 http://safeweb.norton.com/report/show?url=tgcginc.com Another that has spammed my MSN. S.A. = Green. S.A.’s Community = Spam (1). See for yourself at: http://www.siteadvisor.com/sites/prettylink.net. WOT = Apparently, this “prettylink” (according to them) has an excellent reputation and is in the “green” with many concurring. See for yourself at http://www.mywot.com/en/scorecard/prettylink.net. hpHosts = NOT listed. URLVoid = Not flagged here. Bottom line, I have to be honest, I feel as though WOT “missed the boat” here. I tend to fall on the side of the person (in Site Advisor) who reported the site as a spammer because this is my experience as well. Unless the domain has improved since I was being spammed? I guess that is a potentiality, however, I can’t help but say that I am just the least bit skeptical. Ultimately, the folks on this forum will be the final decision makers, but I have stated my piece. H.B. 1/5 Sat, 30 Oct 2010 07:01:50 +0000 http://safeweb.norton.com/report/show?url=prettylink.net Another that has spammed my MSN e-mail. S.A. = Oblivious. WOT = Oblivious. hpHosts = NOT listed. URLVoid = Oblivious. Bottom line, leave the “scholars” to academia, and avoid these spammers! H.B. 1/5 Sat, 30 Oct 2010 04:45:26 +0000 http://safeweb.norton.com/report/show?url=thescholarbeneficialforums.com Some time back, I shed light on the W.C. Funsource Monthly scam promulgated by programstop.com. However, whilst researching that scam, I came across another, perpetrated by funsourceinc.com. For verification, please see the comment by Richy at http://www.complaintsboard.com/complaints/fun-source-c275620.html. S.A. = Green. WOT = Oblivious. hpHosts = NOT listed, however, they indicate that the IP PTR regarding funsourceinc does not resolve, undesirable behavior. You can see this for yourself at: http://hosts-file.net/default.asp?s=funsourceinc.com. Bottom line, like I said once before, leave the “fun” for establishments such as Chuck E. Cheese. H.B. 1/5 Fri, 29 Oct 2010 23:12:53 +0000 http://safeweb.norton.com/report/show?url=funsourceinc.com Another that has spammed my MSN. S.A. = Green. WOT = Oblivious. hpHosts = NOT listed, however, they do list four [4] “hostnames” for this site. See: http://hosts-file.net/default.asp?s=mail12info.com. URLVoid = Oblivious. I submit to you, do they possess all these host names to mask their spamming activities? If you have any insight, post a comment. Norton, please look into this further. H.B. 1/5 Tue, 26 Oct 2010 04:53:07 +0000 http://safeweb.norton.com/report/show?url=mail12info.com Another that has spammed my MSN. S.A. = Back up, but oblivious. WOT = Oblivious. hpHosts = NOT listed. URLVoid = Oblivious. H.B. 1/5 Tue, 26 Oct 2010 04:26:44 +0000 http://safeweb.norton.com/report/show?url=locorkscrew.com Another that has spammed my MSN. S.A. = Their site went down, therefore, I don’t have it. I will have to add a post-comment later. WOT = RED. Please see: http://www.mywot.com/en/scorecard/flowersngift.com. hpHosts = NOT listed. URLVoid = Interesting. They report that WOT has given this domain, “a clean bill of health” yet, that is just completely wrong. If you go to http://www.urlvoid.com and enter flowersngift.com, you will see what I am talking about. I don’t know what happened there, something was mis-translated. Bottom line, Norton, if WOT has found this domain to be problematic, you have to get on this. H.B. 1/5 Tue, 26 Oct 2010 03:57:30 +0000 http://safeweb.norton.com/report/show?url=flowersngift.com Another that has spammed my MSN. S.A. = Green. S.A.’s Community = Spam (1). Please see: http://www.siteadvisor.com/sites/e-consumergift.com. WOT = RED. Please see: http://www.mywot.com/en/scorecard/e-consumergift.com. hpHosts = NOT listed. URLVoid = Except for the mention in WOT, nothing. Bottom line, Norton, if both the community of McAfee and WOT have found this domain to be problematic, you have to get up to speed. Let’s go!!! Time is wasting. H.B. 1/5 Tue, 26 Oct 2010 03:26:57 +0000 http://safeweb.norton.com/report/show?url=e-consumergift.com Another that has spammed my MSN. S.A. = oblivious. WOT = oblivious. hpHosts = NOT listed. URLVoid = oblivious. H.B. 1/5 Tue, 26 Oct 2010 03:04:09 +0000 http://safeweb.norton.com/report/show?url=deiosso.net Another that has spammed my MSN. S.A. = oblivious. WOT = oblivious. hpHosts = NOT listed. URLVoid = oblivious. H.B. 1/5 Tue, 26 Oct 2010 02:48:08 +0000 http://safeweb.norton.com/report/show?url=classicbuon.com Another that has spammed my MSN e-mail apparently stemming from Hong Kong. S.A. = Yellow caution. “Our analysis found that, this site may be promoted through spammy e-mail.” S.A.’s Community = Spam (2), Phishing or other scams (2). You can verify this for yourself if you go to http://www.siteadvisor.com/sites/boldsla.net. WOT = RED. WOT’s Community = Spam (5). One reviewer explains, “Watch shop – illegal Replicas…” For verification, please visit: http://www.mywot.com/en/scorecard/boldsla.net. hpHosts = NOT listed. URLVoid = oblivious. Bottom line, if you want a watch, go to Macy’s and circumvent these criminals. Oh, and Norton, please get up-to-speed with this. H.B. 1/5 Sun, 24 Oct 2010 05:41:33 +0000 http://safeweb.norton.com/report/show?url=boldsla.net Another that has spammed my MSN account. S.A. = oblivious. WOT = oblivious. hpHosts = NOT listed. URLVoid = oblivious. H.B. 1/5 Sun, 24 Oct 2010 04:40:41 +0000 http://safeweb.norton.com/report/show?url=aubruschette.com Another that has spammed my MSN. S.A. = oblivious. WOT = oblivious. hpHosts = NOT listed. URLVoid = oblivious. H.B. 1/5 Sun, 24 Oct 2010 04:25:06 +0000 http://safeweb.norton.com/report/show?url=amyscramble.com Another one that has spammed my MSN e-mail. S.A. = oblivious. WOT = oblivious. hpHosts = NOT listed. URLVoid = oblivious. H.B. 1/5 Sun, 24 Oct 2010 04:10:51 +0000 http://safeweb.norton.com/report/show?url=allatarts.com Another domain that has spammed my MSN e-mail. S.A. = Green. S.A.’s Community = Spam (7), Phishing or other scams (2). WOT = RED. WOT’s Community = Spam (10), Phishing or other scams (11). hpHosts = NOT listed, however, it found two [2] hostnames for this site = mx1.emailsrvr.com and mx2.emailsrvr.com. There’s that “mx” prefix again. URLVoid = except for the mention in WOT, nothing. Resources:- http://www.siteadvisor.com/sites/allalliedhealthschools.com http://www.mywot.com/en/scorecard/allalliedhealthschools.com Bottom line, I see another venerated reviewer here, cnnguyen2784, has also NOT spoken highly of this site - - Norton, please re-evaluate! H.B. 1/5 Sun, 24 Oct 2010 03:43:33 +0000 http://safeweb.norton.com/report/show?url=allalliedhealthschools.com Another that has spammed my MSN. S.A. = oblivious. WOT = oblivious. hpHosts = NOT listed. URLVoid = oblivious. Bottom line, the only “newsletter” I want to see, is the LIBRARY newsletter! H.B. 1/5 Sun, 24 Oct 2010 01:32:13 +0000 http://safeweb.norton.com/report/show?url=theteachingnewslettermedia.com Another that has spammed my MSN e-mail. S.A. = Green, however, does indicate that it connects to a “yellow” site known as thankyousearch.com. S.A.’s Community = Browser Exploit. For more, please go to http://www.siteadvisor.com/sites/welendcash.com. WOT = oblivious. MalwareURL = oblivious. hpHosts = NOT listed. URLVoid = oblivious. Malware Domain List = oblivious. Bottom line, if I need a lender, I’ll go to my local Credit Union, and you should avoid “welendcash” because they are nothing but trouble. H.B. 1/5 Sun, 24 Oct 2010 01:12:53 +0000 http://safeweb.norton.com/report/show?url=welendcash.com Another one that has spammed my MSN e-mail. S.A. = oblivious. WOT = oblivious. hpHosts, ties it to mx1.taxlucky.info, AGAIN. URLVoid says it comes from Canada…. H.B. 1/5 Sun, 24 Oct 2010 00:21:32 +0000 http://safeweb.norton.com/report/show?url=websnowball.com Another that has spammed my MSN e-mail. S.A. = Oblivious. WOT = Oblivious. hpHosts = Connects it to mx1.taxlucky.info. URLVoid = They indicate that this site stems from Canada. Interesting. What does that remind me of? Oh, yeah, how could I forget?! Illegal Canadian pharmacy scams that are rampant these days. Bottom line, the only thing “great” is the great amount of spam these guys freshly brew right to your inbox. Avoid. H.B. 1/5 Sun, 17 Oct 2010 05:19:34 +0000 http://safeweb.norton.com/report/show?url=webgreatcoffee.com This is another one that has spammed my MSN e-mail. S.A. = oblivious. WOT = oblivious. MalwareURL = oblivious. Maybe that’s not fair, I don’t believe MalwareURL is geared to pick up on spammer domains. I am glad to see that that site seems to be working now. hpHosts = oblivious, URLVoid = oblivious. Malware Domain List = nothing. H.B. 1/5 Sun, 17 Oct 2010 04:40:28 +0000 http://safeweb.norton.com/report/show?url=theinstructorquote.com Another spammer that has burdened my MSN account. S.A. = oblivious. WOT = oblivious. hpHosts = oblivious. URLVoid = oblivious. Bottom line, the hat-trick of oblivion has been exceeded - - but just remember that you saw it here, first. H.B. 1/5 Mon, 04 Oct 2010 04:02:57 +0000 http://safeweb.norton.com/report/show?url=thecontinuingteacheroffering.com This is another domain that has spammed my MSN e-mail. S.A. = in the dark. WOT = in the dark. hpHosts = although not listed as malicious, they found an association with that stinking mx1.taxlucky.info. I am definitely seeing a bad pattern with this “taxlucky”. From now on, the ONLY “luck” I want to hear about is little bit o’ luck 1 in 9 odds from lotto!!! LOL. URLVoid = in the dark. H.B. 1/5 Mon, 04 Oct 2010 03:31:42 +0000 http://safeweb.norton.com/report/show?url=transcriptstudy.com This is another site that spams my MSN account. S.A. = they have it in the “green” and say that it links to dreamhost.com. My interpretation: don’t trust it and avoid dreamhost.com as well. According to WOT, it’s a site where you, “Generate your own Little Link (URL) service.” That description reminds me of tinyurl which I have zero respect for as well. WOT’s community flags tllg for the following: Trustworthiness, Vendor Reliability, and Privacy. See for yourself at: http://www.mywot.com/en/scorecard/tllg.net. hpHosts = in the dark. URLVoid = in the dark. Bottom line, avoid these stinking spammers and do NOT confuse them with the legitimate LG Company. H.B. 1/5 Mon, 04 Oct 2010 03:04:59 +0000 http://safeweb.norton.com/report/show?url=tllg.net Another domain that has spammed my MSN e-mail. Incredible! S.A. is up to speed with this one. They say, “McAfee TrustedSource web reputation analysis found potential suspicious behavior on this site which may pose a security risk.” Even three [3] people from their community found that this domain spams. See for yourself at http://www.siteadvisor.com/sites/thojzibl.com. WOT has put this one into the red. Five people in their community flag thojzibl for spam/ one [1] person cites bad customer experience. Joe Wein is listed on WOT citing this thojzibl. See for yourself at http://www.mywot.com/en/scorecard/thojzibl.com. hpHosts = in the dark. URLVoid = in the dark. Although when you perform a domain check, it comes back as “suspicious” - - that is only because WOT has flagged it. When you enter thojzibl.com into their URL & link scanner it comes back clean, hence, I’m going to say that they are “in the dark” if even McAfee flagged it. Bottom line, NORTON, YOU HAD BETTER GET UP-TO-SPEED ON THIS IF EVEN HAPLESS MCAFEE FOUND THIS DOMAIN TO BE PROBLEMATIC!!! H.B. 1/5 Mon, 04 Oct 2010 01:57:23 +0000 http://safeweb.norton.com/report/show?url=thojzibl.com Another domain that has spammed my MSN e-mail. Regrettably, S.A., WOT, hpHosts, and URLVoid did NOT provide me with much more insight. This “teaoffer” is apparently another domain where hpHosts reports that mx1.taxlucky.info is the host name - - just like snowballfinder.com. I found that connection most interesting. As far as I can tell, teaoffer.com is in no way affiliated with the Tea Party, but with these associations to “taxlucky”, hopefully, people don’t think I’m trying to evade April 15! H.B. 1/5 Mon, 04 Oct 2010 00:33:59 +0000 http://safeweb.norton.com/report/show?url=teaoffer.com Another domain that has spammed my MSN e-mail. S.A., WOT, hpHosts, and URLVoid are ALL in the dark. I have warned you, however. hpHosts reports that the “host name” for snowballfinder is mx1.taxlucky.info. Researching that, also turned up nothing, but I would not trust it. In my research, I am finding that (especially with respect to Google images) any link that ends in “.info” is nothing but trouble, and in my experience, consistently leads to MBAM blocking a malicious I.P. My advice would be to exercise extreme caution for any of these .info prefixes. I am also noticing that when I attempt to verify a site through MalwareURL, I am getting an annoying 404. Does anyone know if that site is undergoing maintenance? I see that they have eliminated the “captcha” code as well. H.B. 1/5 Sun, 03 Oct 2010 19:46:27 +0000 http://safeweb.norton.com/report/show?url=snowballfinder.com I had to get out my sledge-hammer for these guys. This www.programstop.com is supposed to be the place where people can terminate their subscriptions to W.C. Funsource, however, both Funsource and Programstop are fraudulent. For verification you can go to the following links: http://www.complaintsboard.com/complaints/funsource-monthly-c60861.html and http://www.complaintsboard.com/complaints/programstopcom-c38966.html. I found out about this W.C. Funsource whilst working in the library. A patron explained how she thought this W.C. Funsource would be something nice for the kids, however, they re-billed her to the tune of almost $100! In my opinion, if you want “fun” stick with Chuck E. Cheese (awesome pizza). Regrettably, SiteAdvisor has this Programstop in the “green” as well and WOT is completely in the dark. I would not doubt that Scamwatcher (a reviewer here) will get up to speed with this find very quickly. H.B. 1/5. Fri, 03 Sep 2010 02:11:57 +0000 http://safeweb.norton.com/report/show?url=programstop.com I have removed my helmet in HONOR of the greatest OVERALL security program. On more than one occasion, NORTON has blocked malicious trojans from invading my system. Over the years, I have dealt with McAfee, Avast!, BitDefender, and Comodo, all of which either proved insufficient or detected false-positives. In my experience, I have NEVER had ANY false-positives with Norton and its comprehensiveness is UNMATCHED. It is due to the aforementioned, that I proudly say, “HELMET’S OFF!!!” and award Norton the coveted FIVE [5] out of FIVE [5] rating. Please keep in mind, that although this is my first 100% “all green” review, do NOT get used to it!!! I still have many MORE spammer domains that I must give the ill-repute 1 out of 5 to. Although I have been exceptionally busy, I figured that I could at least take some time out to bestow PRAISE upon Norton. H.B. Mon, 23 Aug 2010 04:37:46 +0000 http://safeweb.norton.com/report/show?url=norton.com This is another disreputable domain that has spammed my MSN e-mail. Both SiteAdvisor and WOT are NOT up to speed on this either. Oftentimes, it’s not just spam but other malicious behavior associated with domains like this. I did NOT desire to be the guinea pig, however. 1/5 H.B. Thu, 12 Aug 2010 22:24:04 +0000 http://safeweb.norton.com/report/show?url=snowballcombat.com Yeah, this domain has spammed my MSN e-mail. Both SiteAdvisor and WOT are NOT up-to-speed on this as well. Furthermore, although not listed in HP Hosts, a WARNING was issued; please go to http://hosts-file.net/default.asp?s=salientads.com and see for yourself. 1 out of 5. H.B. Wed, 04 Aug 2010 06:46:23 +0000 http://safeweb.norton.com/report/show?url=salientads.com This is one that has spammed my MSN e-mail account. Unfortunately, SiteAdvisor and WOT are not up-to-speed on this either. I have warned you, however. 1 out of 5. H.B. Wed, 21 Jul 2010 02:57:08 +0000 http://safeweb.norton.com/report/show?url=thecolossalstudynewsletters.com Newmail.ru is a disreputable domain that spams my Yahoo mail account. Newmail.ru is nothing more than Pochta.ru in a cheap suit. Notice the screenshot generator for both sites - - strikingly similar yet still rings hollow to me. I debunked Pochta.ru some time back, so these guys from the Russian Federation had to come up with something else quick, however, I am not easily fooled and are on to them. According to ColoradoChris on SiteAdvisor, Newmail.ru is a reported attack site specializing in trojans, botnets, exploits, and other net nasties. See for yourself at http://www.siteadvisor.com/sites/newmail.ru. Sat, 17 Jul 2010 02:31:28 +0000 http://safeweb.norton.com/report/show?url=newmail.ru I recently contemplated installing Spyware Terminator, however, then I scrutinized their EULA. Instead of providing terms of use for Spyware Terminator, they started going into the following: Fun Ball, Crawler Smileys, Funutilities Website, and screensavers! Now, maybe it’s just me, but if this was really a serious anti-malware program, they would exclusively outline the spyware remover. Let me think for a moment, what do smileys hearken me back to? Oh, yes, that’s right, the malicious desktop smiley that is associated with gamingharbor.com! A reviewer on CNET noted that Spyware Terminator will NOT remove threats without installation of their toolbar. Now, what do toolbars remind me of? The sinister gaming harbor toolbar from, you guessed it, gamingharbor.com. I hate toolbars! They shrink the “viewable” and decrease the speed of the browser. Also, keep in mind, whatever you type into them, they ARE tracking you. Then some will be tempted to say, “Just right-click on it and turn it off or use add/remove programs. IT IS NOT ALWAYS THAT SIMPLE! To authoritatively remove these nuisances, many times the registry has to be edited - - a pain if you are a real computer geek. Norton is lucky that I allow their stinking toolbar. Let us also consider the following argumentation. Malwarebytes’ Anti-Malware doesn’t require a “toolbar” to remove malware. Our own venerated CHECKMATE89 once said of toolbars, “TOOLBAR IS KNOWN TO HARM YOUR PC.” Furthermore, another reviewer on CNET remarked that the owner of Crawler is under investigation for producing malware! A nice little racket if you ask me, they give you malware with one hand and with the other provide their program to remove it - - meanwhile raking in all the publicity. Bottom line, I guess you can employ their software, but I would exercise EXTREME caution and maybe get another program to keep it, honest. 3 out of 5. Mon, 05 Jul 2010 01:02:49 +0000 http://safeweb.norton.com/report/show?url=spywareterminator.com These disreputable people hacked my cousin’s e-mail account, and sent info about their sham site to everyone in her contact list. I am in her contact list. However, when I opened the e-mail that came from “her”, it just didn’t feel right. It did not sound like her at all. Sure enough, I researched efartrade.com, and it is a scam site. According to the WOT Web of Trust, this site not only hacks your e-mail, it will give you adware/spyware. This is the newest scam going. Thinking that say, someone you love, sent you advice about a great site to purchase products from, you unwittingly use the site and then they have you! Next comes the daunting task of re-establishing your credit score and alerting all those in your contact list that if they get a message from “you”, to disregard it. H.B. Mon, 21 Jun 2010 06:44:04 +0000 http://safeweb.norton.com/report/show?url=efartrade.com Yeah, this piesnowball.com is yet another disreputable domain that consistently spams my e-mail - - beware! H.B. Tue, 08 Jun 2010 04:36:40 +0000 http://safeweb.norton.com/report/show?url=piesnowball.com This is a direct quote from SiteAdvisor concerning this site, "McAfee TrustedSource web reputation analysis found potential suspicious behavior on this site which may pose a security risk. Use with caution." SiteAdvisor's community has found the following to be true of the site: spam, phishing or other scams. Please pay particular attention to comments by our own Alexis Kauffmann as well as "DougW". Alexis Kauffmann notes that this disreputable domain has been blacklisted by Joe Wein at http://www.joewein.net/. For full disclosure of comments issued by SiteAdvisor's community with respect to this site, please go to: http://www.siteadvisor.com/sites/onlinemedicalplan.com. Additionally, onlinemedicalplan.com has been flagged by the WOT Web of Trust for the following: trustworthiness, vendor reliability, privacy, and child safety. Bottom line- I believe the overwhelming evidence speaks for itself. Norton, PLEASE PUT THIS ONE IN THE RED BEFORE IT CAUSES HARM!!! H.B. Wed, 19 May 2010 04:16:25 +0000 http://safeweb.norton.com/report/show?url=onlinemedicalplan.com According to SiteAdvisor will leave the third-party cookie quantserve.com on your prospective system. SiteAdvisor's community has found the following true of this site: spam and phishing or other scams. Please see http://www.siteadvisor.com/sites/mywireless.org for details. Additionally, the WOT reputation scorecard for this site is atrocious. It has been flagged for vendor reliability and privacy. Bottom line, avoid this spammer domain. H.B. Wed, 19 May 2010 03:19:09 +0000 http://safeweb.norton.com/report/show?url=mywireless.org Spammer domain. Wed, 19 May 2010 03:05:16 +0000 http://safeweb.norton.com/report/show?url=mywireless.com Spammer domain. Wed, 19 May 2010 02:58:02 +0000 http://safeweb.norton.com/report/show?url=theeducationassistantpromotions.com Spammer domain. Wed, 19 May 2010 02:50:33 +0000 http://safeweb.norton.com/report/show?url=theconsistentscholarshipsources.com Spammer domain. I have requested that WOT comment on this site. H.B. Wed, 19 May 2010 02:46:18 +0000 http://safeweb.norton.com/report/show?url=militarybenefitscentral.com Before I get into the inner-workings of this review, I noticed that I must have really angered someone on this forum. This person painstakingly took the time to vote me down on every one of my reviews. To that person, I just want you to know, that yes, I DID INTEND TO ANGER YOU. Anyhow, as for Viking cruises, this disreputable organization consistently spams my e-mail sending me information on their stupid cruises. I have never had dealings with this outfit nor have I ever requested information from them. How they got my e-mail I will never know. What am I going to do with a cruise anyway? Knowing my luck, pirates will come up the sides and ransack the boat while I'm on it. Bottom line, I will leave the Vikings to the history books and if you're smart, you will avoid this SPAMMER DOMAIN!!! H.B. Mon, 17 May 2010 00:23:46 +0000 http://safeweb.norton.com/report/show?url=vikingrivercruises.com I didn't want to issue any reviews at this time because I have so much other work I should be doing, but I had to intervene here. This looks like a grade A first-class scam perpetrated by the other two reviewers of this site (andrial and mysigil) - - overinflating its rating to make it look safe when it's not - - be warned. If I am wrong, and I hope I am (for people's sake) then fine. If you know something to the contrary, feel free to let me know. I did my part, I saw something suspicious, and I sounded the alarm. I have spoken, and will now retreat back to my work. Sun, 07 Mar 2010 09:53:41 +0000 http://safeweb.norton.com/report/show?url=mysigil.com Another site that spams my e-mail. Sun, 24 Jan 2010 22:23:56 +0000 http://safeweb.norton.com/report/show?url=medicalassistcentral.com Another site that spams my e-mail. Sun, 24 Jan 2010 22:18:41 +0000 http://safeweb.norton.com/report/show?url=mavenmarketinggroup.com Another site that spams my e-mail. Sun, 24 Jan 2010 22:13:44 +0000 http://safeweb.norton.com/report/show?url=thealternativeclassroomdiscount.com Another site that spams my e-mail. Sun, 24 Jan 2010 22:08:56 +0000 http://safeweb.norton.com/report/show?url=theinstructionalcooperativemarketing.com Another site that spams my e-mail. Sun, 24 Jan 2010 22:06:30 +0000 http://safeweb.norton.com/report/show?url=theuniversitycheerfulresources.com Another site that spams my e-mail. SiteAdvisor has found that this site will leave the third-party cookie qnsr.com on your system. SiteAdvisor's community has flagged this site for spam and phishing or other scams. See report at: http://www.siteadvisor.com/sites/degree.net Mywot.com has flagged degree.net for trustworthiness, vendor reliability, privacy, and child safety. Sun, 24 Jan 2010 22:00:53 +0000 http://safeweb.norton.com/report/show?url=degree.net Another site that spams my e-mail. Sun, 24 Jan 2010 21:45:15 +0000 http://safeweb.norton.com/report/show?url=thescholasticismculturalemarketing.com Another site that spams my e-mail. Sun, 24 Jan 2010 21:37:39 +0000 http://safeweb.norton.com/report/show?url=theautomaticcertificatedatasubscriptions.com Another site that spams my e-mail. Sun, 24 Jan 2010 21:02:31 +0000 http://safeweb.norton.com/report/show?url=thecertificatenewslettersmemo.com Another site that spams my e-mail. Sun, 24 Jan 2010 20:57:11 +0000 http://safeweb.norton.com/report/show?url=thetrainingnoticesopportunity.com Yet another site that spams my e-mail. Sun, 24 Jan 2010 20:52:48 +0000 http://safeweb.norton.com/report/show?url=thebroadknowledgepromotionscatalogs.com Another site that spams my e-mail. Sun, 24 Jan 2010 20:46:44 +0000 http://safeweb.norton.com/report/show?url=theelearningbetterservices.com Findstuff.com is another domain that spams my e-mail. SiteAdvisor has found that it leaves the thrid-party cookie overture.com on your system. SiteAdvisor's community has found the following with regard to this site: spam, adware, spyware or viruses, browser exploit, excessive pop-ups, and phishing or other scams. See for yourself at http://www.siteadvisor.com/sites/findstuff.com The Wot Web of Trust has flagged findstuff.com for: trustworthiness, vendor reliability, privacy, and child safety! Sun, 24 Jan 2010 20:39:12 +0000 http://safeweb.norton.com/report/show?url=findstuff.com Esolutionsmedia.net spams my e-mail. SiteAdvisor's community has found the following to be true of the site: spam and phishing or other scams. Please see: http://www.siteadvisor.com/sites/esolutionsmedia.net The Wot Web of Trust (www.mywot.com) has also flagged esolutionsmedia.net for the following: trustworthiness, vendor reliability, privacy, and child safety. Sun, 24 Jan 2010 20:05:20 +0000 http://safeweb.norton.com/report/show?url=esolutionsmedia.net Another site that spams my e-mail. Sun, 24 Jan 2010 19:45:30 +0000 http://safeweb.norton.com/report/show?url=earthrisepeace.com Curecolon.com persistently spams my e-mail. SiteAdvisor has issued a caution for this site and SiteAdvisor's community has flagged it for spam. Please see: http://www.siteadvisor.com/sites/curecolon.com The Wot Web of Trust has flagged curecolon for the following: trustworthiness, vendor reliability, privacy, and child safety. Sun, 24 Jan 2010 19:29:42 +0000 http://safeweb.norton.com/report/show?url=curecolon.com Another domain that spams my e-mail. Sun, 24 Jan 2010 18:31:49 +0000 http://safeweb.norton.com/report/show?url=theeducateddeliberatesubscriptions.com This is another domain that perpetually spams my email - - be careful! Sun, 24 Jan 2010 18:20:23 +0000 http://safeweb.norton.com/report/show?url=theknowledgeambitiousnotifications.com So much for peace with respect to this Website. Sorry, I had to do it :) By the way, SiteAdvisor has also confirmed that this site is no good. Please see: http://www.siteadvisor.com/sites/eventoshalom.com Sun, 24 Jan 2010 18:02:23 +0000 http://safeweb.norton.com/report/show?url=eventoshalom.com Another site that continually spams my e-mail. Please see commentary by SiteAdvisor's community: http://www.siteadvisor.com/sites/courseadvisor.com The Wot Web of Trust has also flagged this site for the following: trustworthiness, vendor reliability, privacy, and child safety. In addition, this site will leave the third-party cookie avenue100.com on your system - - be watchful! Sat, 23 Jan 2010 23:30:44 +0000 http://safeweb.norton.com/report/show?url=courseadvisor.com Consumerrewards.us.com is a confirmed spammer domain! Please see: http://www.siteadvisor.com/sites/consumerrewards.us.com The Wot Web of Trust has also flagged this site for the following: trustworthiness, vendor reliability, privacy, and child safety. In my experience, consumerrewards.us.com has repeatedly spammed my inbox - - use caution! Sat, 23 Jan 2010 23:04:40 +0000 http://safeweb.norton.com/report/show?url=consumerrewards.us.com Another domain that spams my e-mail. Be vigilant. Sat, 23 Jan 2010 22:47:43 +0000 http://safeweb.norton.com/report/show?url=borasusu.com Thebeneficiallessonspotquote.com is another domain that spams my e-mail - - watch out! Sat, 23 Jan 2010 22:37:39 +0000 http://safeweb.norton.com/report/show?url=thebeneficiallessonspotquote.com Atdmt.com is yet another dis-reputable domain that spams my e-mail. SiteAdvisor's community has found the following problems with this site: spam, adware, spyware, viruses, browser exploit, excessive pop-ups, phishing or other scams. Please see full report at: http://www.siteadvisor.com/sites/atdmt.com The Wot Web of Trust has flagged this domain for child safety. From what I previously knew, atdmt.com was a tracking cookie associated with MSN and not a virus or spyware at least when I scanned my system with Malwarebytes' and Norton. Norton only perceived it as a tracking cookie with a "low risk" impact - - until recently, I did not know that atdmt.com was also a domain. If anyone else has information on this, feel free to comment. Sat, 23 Jan 2010 22:22:02 +0000 http://safeweb.norton.com/report/show?url=atdmt.com Pochta.ru is another dis-reputable organization that consistently spams my e-mail. Moreover, SiteAdvisor's community has found the following problems with respect to it: spam, adware, spyware, viruses, phishing, and other scams. See full disclosure at: http://www.siteadvisor.com/sites/pochta.ru/ Furthermore, this site connects to loveplanet.ru which has been flagged by the Wot Web of Trust (www.mywot.com) as being inappropriate for children! Sat, 23 Jan 2010 21:33:46 +0000 http://safeweb.norton.com/report/show?url=pochta.ru Another domain that spams my e-mail. Thu, 21 Jan 2010 22:55:31 +0000 http://safeweb.norton.com/report/show?url=baycarote.com Another domain that spams my e-mail. Thu, 21 Jan 2010 22:32:57 +0000 http://safeweb.norton.com/report/show?url=thestudentprogramresearch.com Another domain that spams my e-mail. Thu, 21 Jan 2010 22:26:03 +0000 http://safeweb.norton.com/report/show?url=andcioccolato.com Yet another domain that spams my e-mail. Neither SiteAdvisor nor The Wot Web of Trust (www.mywot.com) has reviewed this domain. From now on, if an authoritative source (outside of Norton) has reviewed these spammer domains I will mention it; if not, I will just highlight my experience with respect to the domain. Thu, 21 Jan 2010 22:17:22 +0000 http://safeweb.norton.com/report/show?url=thecooperativeacademiamail.com Another domain that spams my e-mail - - beware! SiteAdvisor has not reviewed it yet. Thu, 21 Jan 2010 21:46:20 +0000 http://safeweb.norton.com/report/show?url=thecapitalistcollegemediaezine.com Another organization that spams my e-mail. SiteAdvisor has not reviewed this site as of yet. Thu, 21 Jan 2010 21:37:45 +0000 http://safeweb.norton.com/report/show?url=theacceptededucatedresourcesforums.com Nextag is another domain that spams my e-mail! Fortunately, SiteAdvisor has reviewed it. Please see comments posted by their community at the following: http://www.siteadvisor.com/sites/nextag.com Thu, 21 Jan 2010 21:27:37 +0000 http://safeweb.norton.com/report/show?url=nextag.com These people repeatedly spam my e-mail, avoid them. Unfortunately, SiteAdvisor is yet to review this domain. Thu, 21 Jan 2010 21:13:34 +0000 http://safeweb.norton.com/report/show?url=thedisciplinarycoursedeals.com This site persistently spams my e-mail. In addition, SiteAdvisor has flagged this site as being a problem see: http://www.siteadvisor.com/sites/nationalvehiclecoverage.com Bottom line, if you enjoy spam, visit this site by all means :) Thu, 21 Jan 2010 01:00:19 +0000 http://safeweb.norton.com/report/show?url=nationalvehiclecoverage.com Gamesradar is another site which is heavily advertised in Nintendo Power. However, parents must think twice before letting their children access this site. First, I shall discuss technological abnormalities within the site followed by moralist arguments. Lastly, I will provide my conclusion. From the technological side, I.E. 7 blocked the following cookie: http://twitter.com/status/user_timeline/GamesRadar.json?count=3&callback=jsonp1263723963546&_=1263723966359. There were annoying ads along the top and right sides of the pages of this site. Their “Sexy Fan Art” section loaded with errors on page on two occasions. While viewing images in this gallery, Malwarebytes’ Anti-Malware 1.44 successfully blocked malicious I.P.’s from invading my system. The first time, malicious I.P. 93.158.114.163 was blocked. Unfortunately, I did not take down the number of the image that yielded this malicious I.P., however, I made notes on subsequent images that yielded a malicious I.P. Still talking about their “Sexy Fan Art” gallery, images 208 – 210 yielded malicious I.P. 208.73.210.27. The load times for this site were atrocious. From a moralist perspective, parents must realize that this site features the following links right on their Homepage: “The sexiest game babes of 2009”, “Sexy Fan Art”, “Sexy Game Babes”, “Sexy Bayonetta Art”, “Sexy Cortana Art”, and “All the ‘sexy’.” Concerning “Sexy Fan Art” (where I discovered the malicious I.P.’s) they feature 374 really, pornographic depictions of cartoon women. Of the 374, 334 were directly traceable to www.deviantart.com, 1 was traceable to blogspot.com, 13 were traceable to www.imaginefx.com, 5 were traceable to http://www.reiq.co.uk, 1 was traceable to http://fyredrake.net, 1 was traceable to http://www.esthersanz.com, 1 was traceable to http://mysticalrenderings.com, 1 was traceable to http://www.nopinkponies.com, 2 were traceable to www.charlenechua.com, 2 had no attribution except one mentioned “HALO” and the other mentioned “halogoddess”, 6 had a dual location not only at deviantart.com but at the following: http://www.petite-madame.fr, http://www.thong-revolution.com, ghostfire.net, annarigby.com, www.cloudsgallery.com, and barachan.com. 6 had no attribution whatsoever, but if I had to wager, I would say that they were having to do with Halo. 1 came from http://ghostfire.de. I believe that it is very important for parents to be on the lookout for these other deviant sites (that Gamesradar highlighted) so they can safeguard their children more. Blogspot has been condemned by both Safe Web and SiteAdvisor’s communities. According to SiteAdvisor, imaginefx.com will leave the third-party cookie intellitxt.com on your system. Reiq.co.uk links to jigglygirls.com a cartoon porn site that links to other cartoon porn sites. The Wot Web of Trust www.mywot.com has flagged charlenechua.com and thong-revolution.com for child safety. According to SiteAdvisor, cloudsgallery.com and barachan.com will leave the third-party cookie statcounter.com on your system. For the link, “Sexy Game Babes” they explain, “Where we throw caution to the wind and post 56 pictures of sexy game-related babes.” Here, they also suggest users go to snipurl.com. However, both the communities of SiteAdvisor and Mywot condemn this site as having spam, malicious content, phishing, and being a browser exploit. Still in the same vein as “Sexy Game Babes”, they provide users the following links: “Sexy Cosplay Gallery” and “Hot women as game characters in movies.” Under “Sexy Cosplay Gallery” depictions are traceable to the following: deviantart.com, cosplay.com, www.sasha-v.com, cosplaykitten.com, acparadise.com, risingsun.net, www.ng-master.com, darkain.com, www.aurarinoa.it, www.cutekrystal.com, and http://yukicosplay.com. Acparadise.com will leave the third-party cookie bettertechservices.com on your system. Darkain.com will leave the third-party cookie youtube.com on your system. SiteAdvisor has found that yukicosplay.com can connect with bravenet.com that can connect people to malicious sites. SiteAdvisor’s community has found the following problems with bravenet.com: spam, adware, spyware, viruses, browser exploit, excessive popups, phishing and other scams, and bad shopping experience. Moreover, bravenet.com will leave the following third-party cookie on your system: specificclick.net. Under “Hot women as game characters in movies”, there is an article entitled, “11 hot women that have played game characters in movies”. Themes in this article include “Breast physics” and bisexuality. They also depict a computer generated (CG) image of a woman nude (frontal) with pictures of a man’s head censoring her private parts. Gamesradar.com uses lowly expressions in their articles e.g. “piss-poor” and “goddamn”. They have another article entitled, “Games vs. Girls: Which is best.” Here, they put women on the same plane as stupid video games. This is demeaning and leads to the objectification of women which affects civil society holistically. Another link from their Homepage is “Sexy Bayonetta Art”. Here, they have an article entitled, “The sexiest new characters of the decade” wherein they highlight “MISS 2008: Zoey” in which they feature another computer generated woman nude in what appears to be a hot tub. Another link within Gamesradar is for, “The 10 most shocking game moments of the decade.” Their description for this link is as follows: “A decade’s worth of game taboo breakers dredged together into one filthy list.” Here, they have age-gated videos. The concept of age-gated videos is so asinine because all someone has to do is falsify a date of birth and then they can access this horrid content. Still concerning the aforementioned article, they provide another link that states, “Next: Full-frontal nudity, snuff movies and pissing on people…” If a user clicks that, then they will go to “GTA IV: Lost and Damned Full-frontal male nudity 2008”. On this page, there is also a link that will direct people to a section on incest. From there, they discuss Grand Theft Auto III “Picking up prostitutes” dated 2001. There is another link on their Homepage for “Sexy Cortana Art”. Here, there are more inappropriate depictions. Just because users create these images with a cyborgesque look, they think that they can justify what is nothing more than nude cartoons. Still under “Sexy Cortana Art”, users can see the following Web addresses: www.reiq.co.uk, bungie.net, barachan.com, and www.xeracx.com. According to SiteAdvisor, bungie.net will leave the following third-party cookie on your system: quantserve.com. SiteAdvisor’s community has reported this site as having phishing or other scams and a bad shopping experience. Xeracx.com has been flagged by Mywot for child safety. Another link on their Homepage is for “All the ‘sexy’.” If users click that they will have access to three pages of links choc-full of their dirty articles featuring sexual themes. Furthermore, Gamesradar provides their users with links to their sponsors. Their sponsors include but are not limited to: www.CatalogLink.com, www.Pronto.com, www.Dealtime.com, www.smarter.com, www.giftsofloveshop.com, www.rustybarbwireapparel.com, www.Best-Price.com, www.vinyldisorder.com, www.Shopping.com, and www.SHOP.com. Their description for CatalogLink.com is that users can access “Sexy Photo” there. Their description for Pronto.com is that users can “Find Sexy Hot Photos at Great Prices.” Their description for Dealtime.com is that users will be able to access “Sexy Photos” there. Their description for www.smarter.com is that users will be able to “Browse Website Sexy and other Software Products.” Their description for giftsofloveshop.com is that users will be able to access, “Gift baskets, luxurious lingerie, & romantic gifts for all occasions.” God only knows what “romantic gifts” include. Their description for rustybarbwireapparel.com is that this is, “Sexy Women’s Sexy! Free Shipping in USA.” Their description for Best-Price.com is that users can access, “Incredible prices. Find sexy photo & save up to 75% now.” Their description for vinyldisorder.com is that users will be able to access, “Strippers on Poles, Great for Cars! Huge Variety of Colors and sizes.” Their description for Shopping.com is that users will be able to access, “Deals on Photos Sexy. Online sale!” Their description for SHOP.com is that users will be able to access, “Photo Sexy”. One last note, before my conclusion, located near the bottom of Gamesradar’s Homepage they have a link for Future US, Inc. These are the people who publish Nintendo Power the “childrens” magazine. I have a suspicion that they are all in collusion with one another. Bottom line, between malicious I.P.s, unseemly tracking cookies, pages loading with numerous errors on multiple occasions, atrocious load times, unmitigated sexual themes, exposing children to numerous third-party sites (some of which are dangerous) despicable articles objectifying and demeaning women, foul language, videos with insufficient safeguards to lock minors out, uncivilized behaviors discussed in their articles, both you and your children should abstain from visiting this site at all costs as it is not fit for human consumption - - 1 out of 5! If I could rate it a zero, I would. Tue, 19 Jan 2010 19:39:43 +0000 http://safeweb.norton.com/report/show?url=gamesradar.com These people sent me e-mails which I did not request! Then, in one message, there was a section, “if you received this message in error click here”. I clicked that, which opened another portal, however, I still did not find any info with respect to unsubscribing! There was, however, a very inappropriate ad for meeting “hot” singles in your region. Bottom line, I hate it when I am sent un-solicited messages especially those I cannot unsubscribe from. Be very cautious regarding this annoying organization, 3 out of 5! Fri, 15 Jan 2010 20:33:43 +0000 http://safeweb.norton.com/report/show?url=classmates.com I was attempting to access this site because I thought it was a place where I could download themes from Windows 98 that would be compatible with XP. However, Malwarebytes’ Anti-Malware blocked it as malicious. Bottom line, this site will give you malware - - avoid 1 out of 5! Fri, 15 Jan 2010 20:25:45 +0000 http://safeweb.norton.com/report/show?url=174.37.71.212 Some have commented that MyWay is safe - - absolutely not! From the technological side, my sister’s computer was infected with four (4) pieces of malware directly traceable to MyWay. Here are the paths that Malwarebytes’ Anti-Malware discovered: C:\Program Files\MyWaySA(Adware.MyWebSearch) -> Delete on reboot. C:\Program Files\MyWaySA\SrchAsDe (Adware.MyWebSearch) -> Delete on reboot. C:\Program Files\MyWaySA\SrchAsDe\1.bin (Adware.MyWebSearch) -> Delete on reboot. C:\Program Files\MyWaySA\SrchAsDe\1.bin\deSrcAs.dll (Adware.MyWebSearch) -> Delete on reboot. Bottom line, this site will give you malware, stay clear - - 1 out of 5! Sat, 09 Jan 2010 21:06:11 +0000 http://safeweb.norton.com/report/show?url=myway.com The people behind this “campaign” are attempting to warn minors of the dangers of sexting. However, they completely defeat the purpose of their mission when they feature what appears to be a young woman completely nude (frontal) with two inadequate censor bars over her private parts. These guys could not even place “black” censor bars over her. They were see-through bars that were distorted if that makes sense. This video entitled “Public Nudity” does nothing but acerbate the problem. Unbelievable, they don’t want young women/girls to send nude photos of themselves into the public sphere, yet they depict this young woman in the ad (probably viewable by millions) practically nude! It doesn’t get more asinine than this. If they want to discuss the dangers of sexting fine, but do it in a more respectable manner. What I also find hypocritical is that this “project” was launched by MTV one of the biggest purveyors of smut polluting the airwaves and corrupting the youth of America. All I can say is that they must be getting some serious perks because I doubt that they, all of a sudden, found their moral compass. It is also interesting to note that on the sites “air-tight” “Terms of Use”, they talk about how persons under the age of 14 should not be using the site. But I thought the idea was to reach out to young people? Then they shouldn’t be accessing the site? This just does not sync. It seems to me that there exists a wide divide between what should be in the public/private sphere. Bottom line, based upon strong moral objections, this site is abhorrent, stay clear - - 1 out of 5! Fri, 01 Jan 2010 22:47:47 +0000 http://safeweb.norton.com/report/show?url=athinline.org I was attempting to access the Website of the famous voice actress and ADR Director from Funimation Studios, Leah Clark. However, when I went to www.leahclark.com (the number in the title) all of a sudden my Malwarebytes' Anti-Malware program blocked the site giving me notification that it was malicious! Where was Norton on this one? Fri, 01 Jan 2010 21:28:47 +0000 http://safeweb.norton.com/report/show?url=68.178.232.99 This is a confirmed spammer domain, see commentary via www.siteadvisor.com/sites/tinyurl.com. The people at tinyurl are yet another great group of guys who repeatedly spam my e-mail! Fri, 01 Jan 2010 19:50:52 +0000 http://safeweb.norton.com/report/show?url=tinyurl.com Confirmed spammer domain. See commentary via www.siteadvisor.com/sites/doiop.com. Doiop is another great group of people that consistently spam my e-mail. Mon, 28 Dec 2009 22:11:09 +0000 http://safeweb.norton.com/report/show?url=doiop.com Confirmed spammer domain. See commentary at siteadvisor.com/sites/blogspot.com. Blogspot persistently spams my e-mail, yet I do not even know how these people got my e-mail in the first place. Sat, 26 Dec 2009 21:12:37 +0000 http://safeweb.norton.com/report/show?url=blogspot.com From the technological side, my friend recently contracted a nasty virus from this site that KO'd his laptop. It was too late, the hard drive had to be replaced. Apparently, a rogue AV started "scanning" his system and shortly after, it was all over but for the crying. From a moralist standpoint, parents must be vigilant of the associations their children make not only on Facebook, but any social networking site. Also realize that what you post is no longer just under your jurisdiction. Bottom line, I give this site 2 out of 5 emphasis on the may harm your computer part. Some have commented to, "delete your MySpace accounts as they are useless..."; they may also want to cut ties with Facebook until this nasty virus is taken care of. Thu, 17 Dec 2009 21:05:55 +0000 http://safeweb.norton.com/report/show?url=facebook.com Before I start, let me just say, that I did take note when Norton scrubbed my reviews for the following: YouTube.com, Download.com, and Devianart.com. Hopefully, some of you were able to see those reviews before they were taken down. I still stand by those reviews, but will abide by the framework set forth by Norton, and not re-post those reviews until Norton provides me with more insight into why those reviews were removed. Concerning newsvine.com, I was attempting to post commentary on an MSNBC discussion forum when I was transferred to this site. From newsvine, I tried to "upload" a picture for my profile and the link would not work. Also, a suspicious window opened asking me to take a survey. I immediately closed that window out, I did not want to take a chance. In addition, newsvine's page loaded with errors and Microsoft issued a certificate warning for the site! I'm not sure if that means that their certificate has been revoked, but at that point, I definitely was not liking what I was seeing. Bottom line, this site was very frustrating to navigate through, 3 out of 5. Tue, 17 Nov 2009 19:35:35 +0000 http://safeweb.norton.com/report/show?url=newsvine.com Home of all products McAfee. Maybe at one time McAfee was good, but in this era of constantly emerging and complex global security threats, their golden days may have been back when they produced Virucide. How many of you remember that? Anyhow, in my experience, systems that I had running McAfee always had problems then I would have to completely un-install McAfee and install Symantec products and Norton cleaned viruses off the system that McAfee left behind! Bottom line, although the site may be safe, I still rate it 2 out of 5 because employing their insufficient software may harm your computer! Fri, 16 Oct 2009 00:02:13 +0000 http://safeweb.norton.com/report/show?url=mcafee.com Gizmodo and kotaku.com are sites that can be connected to through n4g.com, and you all know how highly I regard that site. One user, not on this forum, commented that Gizmodo featured an inappropriate video of a girl playing Wii nude. I did not confirm this. Regardless, if you are a parent, think twice about letting your kids go to these sites. Bottom line, between inappropriate content on gizmodo and kotaku plus the fact that you can link to both kotaku and gizmodo through the deplorable n4g.com, I'm dropping the hammer on every one of these sites giving them all 2 out of 5! Thu, 15 Oct 2009 23:51:29 +0000 http://safeweb.norton.com/report/show?url=gizmodo.com N4g.com also known as "News for Gamers" is heavily advertised in the popular children's magazine Nintendo Power. Although NP is primarily geared for children, parents should think twice before allowing their kids to visit n4g.com. This site allegedly features news and info on the latest trends in the gaming industry. However, my research suggests that this site does not always feature "family-friendly" articles even if the "Source filter" is on. In fact, one article touts an "adult game" coming to the Wii console wherein the picture used to illustrate the article is that of a little cartoon girl in what could be construed as a very inappropriate bathtub scene. Another problematic aspect of this website is that it provides links to third-party sites, which, in turn, can lead people to pornography. For those of you who hate advertisements, this is not the site for you as it features very annoying and at times even inappropriate ads along the top and right-side of the page. Bottom line, between unsavory content, providing links to third-party sites that can eventually link to porn, and frustrating/inappropriate ads, I strongly recommend that people avoid this site at all costs. After leaving this site I ran a "quick scan" with Norton 2009 and it did not turn up anything malicious. Hopefully when I run a "full scan" and my Malwarebytes' Anti-Malware program, the system will still be clean. Although this site will not damage your computer per se, I still rate this site 2 out of 5 because it may harm you or your children! Sat, 03 Oct 2009 23:11:59 +0000 http://safeweb.norton.com/report/show?url=n4g.com Hello, I am Hammer Bro. This is my first evaluation and I approach this discussion forum not from any personal, ideological, or other engendered biases, but centered upon empirical and etiological experiences that I have had up until this point. If you value your system, do not download anything from gamingharbor.com. This site, located in Germany, will leave the most frustrating Ad-ware infection on your system referenced as "Adware. DoubleD". Other manifestations include, but are not necessarily limited to, "Media Access Startup", "Internet Savings Optimizer", and "System Search Dispatcher". If you find any of these rogue components on your system, delete immediately! Do not wait until problems arise. Norton was not able to fully remove this infection from my system. To comprehensively remove it, I had to employ Malwarebytes' Anti-Malware. At least for now, I find myself concurring with the "punkbuster". Tue, 29 Sep 2009 21:26:28 +0000 http://safeweb.norton.com/report/show?url=gamingharbor.com